Broadstreetads Broadstreet
5 CVEs affecting Broadstreetads Broadstreet. Latest disclosed: 2026-05-21. Critical: 0, High: 0.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2024-11825 | Medium | 6.4 | 2025-01-25 | The Broadstreet plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘zone’ parameter in all versions up to, and including, 1.51.0 due to… |
CVE-2025-9987 | Medium | 5.3 | 2026-05-13 | The Broadstreet plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 1.53.1 via the get_sponsored_meta()… |
CVE-2025-9989 | Medium | 4.4 | 2026-05-13 | The Broadstreet plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 1.53.1 due to insuff… |
CVE-2026-1881 | Medium | 4.3 | 2026-05-21 | The Broadstreet plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 1.52.2 via the get_sponsored_meta… |
CVE-2025-9988 | Medium | 4.3 | 2026-05-13 | The Broadstreet plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on the create_advertiser AJAX action in all version… |